You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@shindig.apache.org by "Sachin Shenoy (JIRA)" <ji...@apache.org> on 2009/04/04 10:41:13 UTC
[jira] Created: (SHINDIG-1009) content-type check should only be
perfomed on "request" field of multipart/form-data
content-type check should only be perfomed on "request" field of multipart/form-data
------------------------------------------------------------------------------------
Key: SHINDIG-1009
URL: https://issues.apache.org/jira/browse/SHINDIG-1009
Project: Shindig
Issue Type: Bug
Components: Java
Affects Versions: trunk
Reporter: Sachin Shenoy
Priority: Minor
Fix For: trunk
The content-type check should only be performed on the json rpc request and any other field should be excepted.
While using oauth with multipart/form-data, the multipart mime field would contain two form-data fields, one with the request and other with oauth signature. The oauth-signature would be of type "application/octect-stream". Running a content type check on this field throws up an exception.
Also, we need tests for all these cases.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Resolved: (SHINDIG-1009) content-type check should only be
perfomed on "request" field of multipart/form-data
Posted by "Adam Winer (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHINDIG-1009?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Adam Winer resolved SHINDIG-1009.
---------------------------------
Resolution: Fixed
Checked in patch, thanks.
> content-type check should only be perfomed on "request" field of multipart/form-data
> ------------------------------------------------------------------------------------
>
> Key: SHINDIG-1009
> URL: https://issues.apache.org/jira/browse/SHINDIG-1009
> Project: Shindig
> Issue Type: Bug
> Components: Java
> Affects Versions: trunk
> Reporter: Sachin Shenoy
> Priority: Minor
> Fix For: trunk
>
> Original Estimate: 24h
> Remaining Estimate: 24h
>
> The content-type check should only be performed on the json rpc request and any other field should be excepted.
> While using oauth with multipart/form-data, the multipart mime field would contain two form-data fields, one with the request and other with oauth signature. The oauth-signature would be of type "application/octect-stream". Running a content type check on this field throws up an exception.
> Also, we need tests for all these cases.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.